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PUBLIC KEY CERTIFICATE 



CERTIFICATE VERSION NO. 



CERTIFICATE AUTHORITY ( CA) 
SERIAL NUMBER 



SIGNATURE ALGORITHM AND 
PARAMETERS 



CERTIFICATE AUTHORITY ( CA) 
NAME 



CERTIFICATE VALIDITY 



CERTIFICATE USER NAME (ID) 



PUBLIC KEY OF CERTIFICATE 
USER 



CERTIFICATE AUTHORITY ( CA) 
PRIVATE KEY 



HASH FUNCTION 







ENTIRE MESSAGE 



\ 



y ENTIRE 
r MESSAGE 



DIGITAL 
SIGNATURE 
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31 - 



32- 



33- 



RSA 

CERTIFICATE 

AUTHORITY 

(RSA-CA) 



ECC 

CERTIFICATE 

AUTHORITY 

(ECC-CA) 



RSA 

REGISTRATION 

AUTHORITY 

(RSA-RA) 
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ECC 

REGISTRATION 

AUTHORITY 

(ECC-RA) 



J RSA 



RSA 

END ENTITY 
(RSA-EE) 
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22 



ECC 

END ENTITY 
(ECC-EE) 
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RSA 
Device 
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EXAMPLE OF CERTIFICATE FORMAT (BASED ON X.509 V3) 



ITEMS 


DESCRIPTION 


SETTINGS WITH THIS IA 


Version 1 


version 


VERSION OF CERTIFICATE FORMAT 


V3 


serial Number 


CERTIFICATE SERIAL NUMBER 

Fl tRN 1 SHFD RY IA 
l ur\n i uiilu ui in 


SEQUENTIAL SERIAL NUMBER 


signature. algorithm 
Ident it ler 

algorithm 

parameters 


CERTIFICATE SIGNATURE 
AinnRiTHM AMn paramftfrs 

MLuUn 1 1 DM AINU rMnMIVIC 1 t_r\o 


•ELLIPTIC CURVE 

CRYPTOGRAPHY OR RSA 
•PARAMETERS IN THE 

CASE OF ELLIPTIC 

CURVE CRYPTOGRAPHY 
•KEY LENGTH IN THE 

CASE OF RSA 


i ssuer 


IA NAME (DISTINGUISHED 
NAME FORMAT) 


NAME OF THIS IA 


val id ity 
notBefore 
notAfter 


VALIDITY OF CERTIFICATE 
•STARTING DATE AND TIME 
•ENDING DATE AND TIME 




subject 


USER IDENTIFICATION NAME 


USER DEVICE ID OR 
SERVICE ENTITY ID 


subject Publ ic Key Info 
algorithm 
subject Publ ic key 


USER'S PUBLIC KEY INFORMATION 
•KEY ALGORITHM 
•PUBLIC KEY 


•ELLIPTIC CURVE 
CRYPTOGRAPHY OR RSA 
•USER'S PUBLIC KEY 


Version 3 


authority Key Identifier 
key Identifier 
authority Cert Issuer 
authority Cert Serial 

Number 


•KEY IDENTIFIER FOR SIGNATURE 
VERIFICATION BY IA 
•KEY ID NUMBER (OCTAL) 
•IA NAME (GENERAL NAME FORMAT) 
•CERTIFICATE SERIAL NUMBER 




subject key Identifier 


APPLICABLE WHERE MULTIPLE 
KEYS NEED TO BE CERTIFIED 


NOT USED 


key usage 
(0) digital Signature 
(Dnon Repudiation 

(2) key Encipherment 

(3) data Encipherment 

(4) key Agreement 

(5) key CertSign 

(6) cRL Sign 


THE PURPOSE OF KEY USAGE 
IS DESIGNATED 
(O)FOR DIGITAL SIGNATURE 
(DFOR REPUDIATION PREVENTION 

(2) FOR KEY ENCRYPTION 

(3) FOR MESSAGE ENCRYPTION 

(4) FOR DISTRIBUTION OF 
COMMON KEY 

(5) FOR VERIFICATION OF 
SIGNATURE ON CERTIFICATE 

(6) FOR VERIFICATION OF 
SIGNATURE ON CERTIFICATE 
REVOCATION LIST 


USAGE (0), (1), (4) AND 
(6) APPLY 


private Key Usage Period 
notBefore 
notAfter 


USAGE PERIOD OF USER'S 
PRIVATE KEY 


USAGE PERIOD OF 
CERT I F I CATE=USAGE PERIOD 
OF PUBLIC KEY4JSAGE PERIOD 
OF PRIVATE KEY (DEFAULT) 
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po 1 i cy Mapp i ngs 
issuer Domain Pol icy 
subject Domain Policy 


NECESSARY ONLY WHEN CA IS 

liL.vL.OOnf \ 1 UliL. 1 III IL.lv Vsn lO 

CERTIFIED. AN ISSUER DOMAIN 
POLICY AND A SUBJECT DOMAIN 
POLICY ARE DEFINED. 


NONE BY DEFAULT 


cnnnnrfeH A 1 nnr if lime 

algorithm Identifier 
i nt ended Usage 
intended Certificate 
Pol icies 


ATTRIRIITF9 OF THF niRFPTORV 
n 1 1 n 1 DU 1 Co Ur 1 nC UlnCOIUnT 

(X.500) ARE DEFINED. WHEN THE 
OPPOSITE PARTY OF 
COMMUNICATION IS TO USE 
DIRECTORY INFORMATION, THAT 
PARTY IS INFORMED OF THE 
DIRECTORY ATTRIBUTES IN 
ADVANCE. 


NDNIF RY nFFAl II T 


subject Alt Name 


USER'S ALTERNATIVE NAME 
(GENERAL NAME FORMAT). 


NOT USED 


issuer Alt Name 


THIS FIELD IS INCLUDED 
(NONE BY DEFAULT) . 


NONE BY DEFAULT 


subject Directory 
Attributes 


USER'S ANY ATTRIBUTES. 


NOT USED 


basic Constraints 
cA 

path Len Constraint 


TH 1 9 F ( Fl n SPFC 1 F 1 F9 WHFTFR 
inio i i i_i_u or i_v/ 1 r i to nncicn 

THE PUBLIC KEY SUBJECT TO 
CERTIFICATION IS TO BE 
SIGNED BY THE CERTIFICATE 
AUTHORITY (CA) OR USED BY 
THE USER. 


1 icpn RY IISFR 
BY DEFAULT 


name Constraints 
permitted Subtrees 
base 
minimum 
maximum 

excluded Subtrees 


USED ONLY WHEN THE SUBJECT 
IS CA (CA CERTIFICATION). 


NONE BY DEFAULT 

tlVliL- U 1 L/L.I nUL 1 


pol icy Constraints 
require Exp | icit Pol icy 
inhibit Pol icy Mapping 


DESCRIBED HERE ARE 
CONSTRAINTS REQUIRING 
EXPLICIT POLICY IDs AND 
INHIBIT POLICY MAPPING FOR 
THE REMAINING CERTIFICATION 
PATHS. 




CRL Distribution Points 


DESCRIBED HERE ARE POINTS AT 
WHICH THE USER REFERENCES 
THE CERTIFICATE REVOCATION 
LIST (CRL) TO SEE WHETHER 
THE CERTIFICATE IS REVOKED. 


THESE POINTS SERVE AS 
POINTERS INDICATING 
WHERE THE CERTIFICATE IS 
REGISTERED. THE 
CERTIFICATE REVOCATION 
LIST IS MANAGED BY THE 
ISSUER. 


SIGNATURE 


ISSUER'S SIGNATURE 





FIG. 7 



S1 — 



LET p BE CHARACTERISTIC, AND a, 
b BE COEFFICIENTS OF ELLIPTIC 
CURVE. DEFINE ELLIPTIC CURVE BY 
y 2 =x 3 +ax + b. LET G BE BASE POINT 
OF CURVE ;r BE ORDER OF G;M BE 
MESSAGE ;Ks BE PRIVATE KEY; 
AND G, Ks x G BE PUBLIC KEY. 



S2- 



CALCULATE F = Has h (M) 

I 



I GET RANDOM NUMBER GENERATOR 
bd TO GENERATE u (0<u<r) 



X 



S4 ~H CALCULATE Y=u x G= (Xv, Yv) I 

— x 



S5H" 



CALCULATE c =Xv mod r 



S6 



0=0 ? 









NO 


S7 — 


CALCULATE d= [(f + cKs) /u] mod 


r 






ss -x — ^ 


h — >^ 










NO 
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LET SIGNATURE 


DATA BE(c, d) 
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LET p BE CHARACTERISTIC, AND a, 
b BE COEFFICIENTS OF ELLIPTIC 
CURVE. DEFINE ELLIPTIC CURVE BY 
y 2 =x 3 +ax + b. LET G BE BASE POINT 
OF CURVE; r BE ORDER OF G;M BE 

message; (c, d) be signature; 

AND G, Ks x G BE PUBLIC KEY. 



S12 



-S1 1 



~~ X 0<c<r AND 0<d<r ? ^ 



NO 



i 






r YES 


5 
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CALCULATE 


f=Hash(M) | 


- 






- 


S14— 


CALCULATE h 


= 1 /d mod r 








- 


m 


S15— 


CALCULATE hi =fh mod r 
AND h2 =ch mod r 



S16H 
S17 



CALCULATE POINT P= 
(X P> Yp) = h1 x G+h2 -Ks x G 



IS P INFINITE POINT ? 



S18- 



NO 



> 



YES 



.NO 







,YES 


SIS- 


SIGNATURE VALID 





SIGNATURE INVALID 
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/"GENERATION OF KEYS \ 
VFOR RSA CRYPTQSYSTEM J 



□ 



SELECT PRIME NUMBERS 
p AND q (OF ABOUT 150 
DIGITS EACH) 



CALCULATE n = P g ~~| ^~ 



CALCULATE L=(p-1)(q-1) 



-S21 



S22 



-S23 



SELECT POSITIVE INTEGER e LESS 
THAN n AND NOT SHARING COMMON 
FACTOR WITH L AND LET (n, e) BE 
PUBLIC KEY 



S24 



FIND POSITIVE INTEGER d LESS 
THAN L AND SATISFYING 
de=1 mod L AND LET (p , q, d) 
BE PRIVATE KEY 



(end) 
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a 



c 



RSA SIGNATURE 
GENERATION PROCESS 



APPLY HASH FUNCTION h TO 
PLAIN TEXT MESSAGE M 
m=h (M) 



S=m d mod n 



S32 



F IG. 10B 



- 



RSA SIGNATURE 
VERIFICATION PROCESS 



APPLY HASH FUNCTION h TO 
PLAIN TEXT MESSAGE M 
m=h (M) 



-S33 



S34 



-^^T T^f^ no 

„rn=S mod n V^> 






YES S35 
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/ S 


SIGNATURE VALID SIGNATURE INVALID 
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Algori thm_<A> 
Parameter_xxx 


V3 
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Flag = 1 


Sign. A 1 go. Identifier 


Algorithm_<B> 
Parameter_yyy 
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ENCRYPTION 
PROCESSING BLOCK 
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j 



STORAGE MODULE 
INDIVIDUAL ID OF DEVICE 

PRIVATE KEY FOR EACH 
INDIVIDUAL DEVICE, OTHER 
PRIVATE KEYS 

PUBLIC KEY OF 
CERTIFICATE AUTHORITY 

PUBLIC KEYS FOR SERVICE 
PROVIDER, ETC. 

EXTERNAL MEMORY 
CHECKSUM 



EXTERNAL 
MEMORY 

KEY FOR 
CONTENT 
HANDLING, 
ETC. 



836 



MASS STORAGE BLOCK 

PUBLIC KEY CERTIFICATE 
FOR EACH INDIVIDUAL DEVICE 

PUBLIC KEY CERTIFICATES 
FOR SERVICE PROVIDERS , ETC . 

VARIOUS REGISTRATION INFORMATION 



